Director Compliance - Independent Compliance Testing

The Global Risk & Compliance (GRC) organization serves as American Express’ independent risk management function. GRC maintains the enterprise risk framework, provides oversight and challenge, and monitors key risks. By embedding risk discipline into strategy and operations, GRC enables responsible growth, innovation, and long-term value creation while protecting customers and shareholders.

We are seeking an experienced and proactive professional to join our Compliance team as a Director of International Independent Compliance Testing (ICT). The successful candidate will lead a geographically dispersed team, deliver high-quality independent assurance over regulatory compliance, and partner with senior stakeholders to strengthen the organization’s control environment and culture of compliance. This role requires a balance of technical expertise, leadership capability, and the ability to operate effectively in a complex, global regulatory landscape.

Responsibilities

• Lead the design, implementation, and execution of a risk-based International Independent Compliance Testing programme across regions, legal entities, and business units.

• Oversee end-to-end testing lifecycle delivery, ensuring adherence to ICT methodology, internal standards, and regulatory expectations.

• Direct multiple concurrent reviews of varying scale and complexity, ensuring consistency, quality, and timely delivery across all engagements.

• Drive continuous improvement in testing methodologies, leveraging data, insights, and industry best practices.

Risk Identification, Assessment & Reporting

• Provide independent, objective assessment of compliance risks and control effectiveness through rigorous testing and analysis.

• Identify, assess, and clearly articulate regulatory findings, applying professional scepticism and sound judgment.

• Draft and deliver clear, high-quality final review reports, articulating scope, methodology, findings, and risk implications.

• Deliver high-quality, concise, and impactful reporting to senior management and governance forums.

Stakeholder Engagement & Influence

• Develop deep understanding of the organization's global business model, products, services, and regulatory obligations.

• Partner closely with Legal Entity Compliance Officers (LECOs) across jurisdictions to ensure testing plans, scope, and review execution are aligned with local regulatory requirements, risk profiles, and business priorities.

• Partner closely with second line risk functions, General Counsel, and Internal Audit to ensure alignment and minimise duplication of effort.

• Engage and influence senior stakeholders across regions, providing credible challenge and driving accountability for risk management.

• Present complex findings and insights with clarity and authority to executive audiences.

Leadership & People Development

• Lead, coach, and develop a high-performing, internationally dispersed team of compliance testing professionals.

• Foster an inclusive, collaborative, and performance-driven culture, promoting continuous learning and professional growth.

• Set clear expectations, manage performance, and build succession capability within the team.

Framework & Regulatory Alignment

• Contribute to the evolution of the global ICT framework, standards, and procedures to ensure ongoing effectiveness and scalability.

• Monitor and interpret regulatory developments across jurisdictions, translating them into testing strategies and programme enhancements.

• Ensure alignment with evolving industry practices and regulatory expectations.

Qualifications

• Relevant professional certification (e.g., CPA, CIA, CRCM or equivalents).

• Significant experience (typically 6+ years) in regulatory compliance, internal/external audit, or assurance within financial services, banking, or payments/card industries.

• Strong understanding of global regulatory frameworks and expectations impacting financial institutions, including cross-border considerations.

• Deep expertise in compliance testing methodologies and control evaluation techniques.

• Demonstrated ability to assess complex risk environments and form independent, evidence-based conclusions with integrity and objectivity.

• Proven track record of engaging and influencing senior stakeholders, with excellent written and verbal communication skills.

• Strong leadership capability, with experience managing and developing teams across multiple locations and cultures.

• Ability to operate effectively in a fast-paced, matrixed, and globally distributed organization.

Employment eligibility to work with American Express in Spain is required as the company will not pursue visa sponsorship for these positions.